Cisco Cisco Web Security Appliance S170 사용자 가이드
20-9
Cisco IronPort AsyncOS 7.5.7 for Web User Guide
Chapter 20 Configuring Security Services
Enabling Web Reputation and Anti-Malware Filters
•
You can enable or disable web reputation filtering in each Access Policy, but you cannot edit the
Web Reputation Scores.
Web Reputation Scores.
•
You can enable anti-malware scanning in each Access Policy, but you cannot choose which
anti-malware scanning engine to enable. Adaptive Scanning chooses the most appropriate engine for
each web request.
anti-malware scanning engine to enable. Adaptive Scanning chooses the most appropriate engine for
each web request.
Note
If Adaptive Scanning is not enabled and an Access Policy has particular web reputation and anti-malware
settings configured, and then Adaptive Scanning is enabled, any existing web reputation and
anti-malware settings are overridden.
settings configured, and then Adaptive Scanning is enabled, any existing web reputation and
anti-malware settings are overridden.
Enabling Web Reputation and Anti-Malware Filters
The Web Reputation Filters, DVS engine, and the Webroot, McAfee, and Sophos scanning engines are
enabled by default during system setup. Anytime after system setup, you can enable web reputation and
anti-malware filters and configure global settings.
enabled by default during system setup. Anytime after system setup, you can enable web reputation and
anti-malware filters and configure global settings.
After the Web Reputation and Anti-Malware Filters are enabled, you can configure web reputation and
anti-malware settings in policy groups. For more information, see
anti-malware settings in policy groups. For more information, see
To enable Web Reputation and Anti-Malware Filters:
Step 1
Navigate to the Security Services > Web Reputation and Anti-Malware page.
Step 2
Click Edit Global Settings.
The Edit Web Reputation and Anti-Malware Settings page appears.
Step 3
Configure the web reputation and anti-malware settings as necessary.
describes the settings
you can configure.
Table 20-5
Web Reputation and Anti-Malware Filter Settings
Setting
Description
Web Reputation
Filtering
Filtering
Choose whether or not to enable Web Reputation Filtering.
Adaptive Scanning
Choose whether or not to enable Adaptive Scanning. You can only enable
Adaptive Scanning when Web Reputation Filtering is enabled.
Adaptive Scanning when Web Reputation Filtering is enabled.
For more information, see
.
Object Scanning
Limits
Limits
Specify a maximum request/response size.
The Maximum Object Size value you specify applies to the entire size of
requests and responses that might be scanned by security components on the
Web Security appliance, such as the Cisco IronPort Data Security Filters or the
Webroot scanning engine. When an upload or download size exceeds this size,
the security component may abort the scan in progress and may not provide a
scanning verdict to the Web Proxy.
requests and responses that might be scanned by security components on the
Web Security appliance, such as the Cisco IronPort Data Security Filters or the
Webroot scanning engine. When an upload or download size exceeds this size,
the security component may abort the scan in progress and may not provide a
scanning verdict to the Web Proxy.
Sophos
Choose whether or not to enable the Sophos scanning engine.